Anomali Labs Research Shows Email-Based Attacks Continue to Threaten Election Security
Implementing email security controls such as SPF, DKIM, DMARC, STARTTLS, DNSSEC, and DANE can help ensure the security of election sites.
<p>The Anomali Labs team today published research on the potential for email-based attacks against election infrastructure. The new report, “Can Lightning Strike the US Elections Twice?: Email Spoofing Threat to the 2018 US Midterm Elections,” reveals that most US states have vulnerabilities that would allow email spoofing and phishing attacks to succeed.<br/> <br/> The Anomali Labs team examined the secretary of state and voter registration websites for all 50 US states, the District of Columbia, and 5 US territories. Each site was evaluated to detect the use of six email security technologies. <br/> <br/> <img alt="" src="https://cdn.filestackcontent.com/2rTgP2zPSxiFXcFllYxL"/><br/> The full report is <a href="https://www.anomali.com/resources/whitepapers/email-spoofing-threat-to-the-2018-us-midterm-elections?cid=7011Y0000011I2q" target="_blank">available for download here</a>. This is the first of a series of upcoming election-related research reports from Anomali Labs.<br/> </p>
FEATURED RESOURCES
Anomali Cyber Watch
Anomali Cyber Watch: OWASP Agentic AI, MongoBleed, WebRAT Malware, and more
Real-World Attacks Behind OWASP Agentic AI Top 10. MongoDB Memory Leak Vulnerability “MongoBleed” Actively Exploited. WebRAT Malware Spread via Fake GitHub Proof of Concept Exploits. Trusted Cloud Automation Weaponized for Credential Phishing. MacSync macOS Stealer Evolves to Abuse Code Signing and Swift Execution. Claimed Resecurity Breach Turns Out to Be Honeypot Trap. Cybersecurity Professionals Sentenced for Enabling Ransomware Attacks. Google Tests Nano Banana 2 Flash as Its Fastest Image AI Model. RondoDox Botnet Exploits React2Shell to Hijack 90,000+ Systems. Critical n8n Expression Injection Leads to Arbitrary Code Execution
Anomali Cyber Watch
Anomali Cyber Watch: SantaStealer Threat, Christmas Scams of 2025, React2Shell Exploit, Phishing via ISO, and more
SantaStealer Infostealer Threat Gains Traction in Underground Forums. From Fake Deals to Phishing: The Most Effective Christmas Scams of 2025. React2Shell Exploitation Expands With New Payloads and Broader Targeting. Russian Phishing Campaign Delivers Phantom Stealer via ISO Attachments. And More...
